Connecting SOAR apps

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Apps are the integration points between Splunk SOAR and your other security technologies. Through apps, Splunk SOAR directs your other security tools to perform actions on your assets. The Splunk SOAR app model supports 350+ tools and 2,150+ actions, so you can connect and coordinate workflows across your team and tools.

Some of the most popular apps are:

AWS EC2
Cisco ISE
HTTP
Jira
Microsoft 365 Defender
MS Graph for Office 365
MySQL
ServiceNow
SMTP
SSH
Virustotal v3
Whois

To search all available Splunkbase apps for SOAR, click here.

You can also develop your own custom SOAR apps!

You can also take the free Developing SOAR applications course to plan, design, and debug basic applications for Splunk SOAR.

Additional resources

Splunk Docs: Managing SOAR apps (Cloud version)
Splunk Docs: Managing SOAR apps (On-premise version)
Splunk Docs: Developing custom SOAR apps (Cloud version)
Splunk Docs: Developing custom SOAR apps (On-premise version)

Previous step

Next step